13 Spear Phishing Stats to Build Your Case for Email Fraud Protection

Spear phishing is the biggest threat to enterprise security today. According to Verizon, the vast majority of data breaches begin with a targeted phishing campaign against an organization.

Traditionally, we have relied on people as the first line of defense against email fraud. But, as the numbers below show, that strategy just isn’t working. We must instead prioritize investment in technology solutions that block bad email before it reaches the inbox.

To garner support and to build a business case for this investment, you must communicate the size and scope of the spear phishing problem effectively across your organization. And nothing is more compelling than data.

Here are 13 spear phishing statistics you can use to make your case for email fraud protection:

97 percent of people around the world cannot identify a sophisticated phishing email. (Source: Intel)

30 percent of phishing messages get opened by targeted users and 12 percent of those users click on the malicious attachment or link. (Source: Verizon)

Only three percent of targeted users report malicious emails to management. (Source: Verizon)

95 percent of all attacks on enterprise networks are the result of successful spear phishing. (Source: SANS Institute)

Business Email Compromise (BEC) scams have cost companies over two billion in the past two years. (Source: FBI)

How to Explain DMARC in Plain English

About Estelle Derouet

Estelle Derouet is Vice President of Marketing, Email Fraud Protection at Return Path. In her role, Estelle leads a fabulously talented team of experienced B2B marketers, tasked with driving awareness and generating demand. Prior to joining Return Path in 2010, Estelle led the EMEA and APAC marketing function at enterprise mobility provider iPass for eight years. Follow her on Twitter @ederouet.